NIST 800-53 REV 5 • ASSESSMENT, AUTHORIZATION, AND MONITORING

CA-9(1)Compliance Checks

Perform security and privacy compliance checks on constituent system components prior to the establishment of the internal connection.

CMMC Practice Mapping

No direct CMMC mapping

NIST 800-171 Mapping

No direct NIST 800-171 mapping

Related Controls

Supplemental Guidance

Compliance checks include verification of the relevant baseline configuration.

Practitioner Notes

This enhancement requires compliance checks before allowing internal system connections — verifying that devices meet security requirements before they join the network.

Example 1: Use Microsoft Intune compliance policies to verify that devices meet security baselines (encryption enabled, antivirus current, OS patched) before granting network access.

Example 2: Deploy 802.1X network access control on your switches so that devices must authenticate and pass a health check before being allowed onto the production network.

More Assessment, Authorization, and Monitoring Controls

CA-1 Policy and Procedures CA-2 Control Assessments CA-2(1) Independent Assessors CA-2(2) Specialized Assessments